Hi Tom,
quite late answer, but maybe it still helps:
I had the very same problem using Reviewboard 6.0.2 and used the workaround as showed by you, also finding it working but ugly. If finally managed to solve it by:
1. cp <special-certificate> /usr/local/share/ca-certificates/<special-certificate>
2. /usr/sbin/update-ca-certificates
3. apt-get install libldap-common
By doing so, the <special-certificate> is added to system-wide cert-store (/etc/ssl/certs/ca-certificates.crt in my case) and LDAP client is automatically configured (by /etc/ldap/ldap.conf) to look into the system-wide cert store. Afterwards, LDAP login worked again for me without changing anything inside RB's ldap.py.
Although RB might support selection of SSL certs in future, I found that solution very convenient, because it is a step towards storing the certificate in one single place, instead of having to maintain it at several places all over the OS and different applications ...
Best regards,
-Florian